qulogic/pidgin

Add Tomasz's fixes to the ChangeLog. I'll hopefully remember to fill in the
release-2.x.y
2014-01-11, Mark Doliner
4e2416683223
Parents 179a49ea2a4b
Children b2571530fa8b
Add Tomasz's fixes to the ChangeLog. I'll hopefully remember to fill in the
CVE numbers before tagging.
1 files changed, 9 insertions(+), 0 deletions(-)
  • +9 -0
    ChangeLog
    • --- a/ChangeLog Sat Jan 11 22:57:47 2014 -0800
    +++ b/ChangeLog Sat Jan 11 23:00:56 2014 -0800
    @@ -26,6 +26,9 @@
    session.
    Gadu-Gadu:
    + * Fix buffer overflow with remote code execution potential. Only
    + triggerable by a Gadu-Gadu server or a man-in-the-middle.
    + (discovered by Yves Younan, Sourcefire VRT) (CVE-2014-NNNN)
    * Disabled buddy list import/export from/to server (it didn't work
    anymore). Buddy list synchronization will be implemented in 3.0.0.
    @@ -35,6 +38,8 @@
    Cyrus SASL support. (#15517)
    MXit:
    + * Fix buffer overflow with remote code execution potential.
    + (discovered by Sourcefire VRT) (CVE-2014-NNNN)
    * Fix sporadic crashes that can happen after user is disconnected.
    * Fix crash when attempting to add a contact via search results.
    * Show error message if file transfer fails.
    @@ -44,6 +49,10 @@
    SILC:
    * Correctly set whiteboard dimensions in whiteboard sessions.
    + SIMPLE:
    + * Fix buffer overflow with remote code execution potential.
    + (discovered by Sourcefire VRT) (CVE-2014-NNNN)
    +
    XMPP:
    * Fix possible crash or other erratic behavior when selecting a very
    small file for your own buddy icon.